Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 2 answers
  • Subscribers 27 subscribers
  • Views 6226 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Traffic monitoring without authentication

ManosZoumpoulakis

Hi everyone.

I want to use Sophos XG FW to monitor my network's traffic, to have reports for Application Usage per user, without requesting from users to login themselves.

For example, User1 owns devices from 172.16.1.100 to 172.16.1.105

I want the Sophos XG to automatically add traffic to User1 when it sees traffic from 172.16.1.100 to 172.16.1.105, so I am able to view traffic per Application on the Traffic Dashboard, and also on Objects->Identity->Users when I click on "View Usage"

I am confused how to setup the above. Could anyone help me?

Thanks in advance,

Manos.



This thread was automatically locked due to age.
Parents
  • 0

    Hi Manos,

    Not possible to merge the IP traffic reports into a host definition.

    Thanks

  • 0 in reply to sachingurung

    Hi Sachin, thank you for your reply.

    Is there another way to have traffic and usage statistics per user without having them to login? MAC address, certificate on their devices, or something else?

    Thank you,

    Manos.

  • 0 in reply to ManosZoumpoulakis

    HI Manos ,

    As mentioned by Sachin , we do not have a feature that would automatically MAP a Range of address to Group host Object.  But we do have a suggestion for your scenario . I would suggest to create a Clientless users for your Network and so the system with the Host address mapped with the Username in client-less is automatically authenticated and would be automatically in live users even though the host PC or IP is unused. 

    To know more about Client-less kindly refer the Article 123039

    https://community.sophos.com/kb/en-US/123039

    Now if you are using Dynamic Allocation , We would recommend you to configure Static DHCP and associate each MAC address of the Host running in your Network and map with the desired host address and Make sure in client-less users the Username and the host address is mapped properly. This would sort the issue for Reports and may get based on username without any authentication process.

    Thanks and Regards 

    Aditya Patel | Network and Security Engineer.

Reply
  • 0 in reply to ManosZoumpoulakis

    HI Manos ,

    As mentioned by Sachin , we do not have a feature that would automatically MAP a Range of address to Group host Object.  But we do have a suggestion for your scenario . I would suggest to create a Clientless users for your Network and so the system with the Host address mapped with the Username in client-less is automatically authenticated and would be automatically in live users even though the host PC or IP is unused. 

    To know more about Client-less kindly refer the Article 123039

    https://community.sophos.com/kb/en-US/123039

    Now if you are using Dynamic Allocation , We would recommend you to configure Static DHCP and associate each MAC address of the Host running in your Network and map with the desired host address and Make sure in client-less users the Username and the host address is mapped properly. This would sort the issue for Reports and may get based on username without any authentication process.

    Thanks and Regards 

    Aditya Patel | Network and Security Engineer.

Children
No Data